From a9f6ef68bb2cbc0e75d6fa78dce8db2bb6ff9770 Mon Sep 17 00:00:00 2001
From: Emilio Pascual <emilio@moduon.team>
Date: Fri, 22 May 2026 09:27:31 +0200
Subject: [PATCH] [ADD] hr_timesheet_manager_approver: Allow approvers to
 manage subordinate timesheets

Extend the `timesheet_line_rule_approver` record rule so that users with
group_hr_timesheet_approver can read, write, create and delete timesheets
of employees whose parent_id.user_id matches them. Add unit tests to
verify CRUD access on subordinate timesheets while restricting access to
non-subordinates.

@moduon MT-14395
---
 hr_timesheet_manager_approver/README.rst      | 117 +++++
 hr_timesheet_manager_approver/__init__.py     |   2 +
 hr_timesheet_manager_approver/__manifest__.py |  19 +
 hr_timesheet_manager_approver/pyproject.toml  |   3 +
 .../readme/CONTRIBUTORS.md                    |   1 +
 .../readme/DESCRIPTION.md                     |   6 +
 hr_timesheet_manager_approver/readme/USAGE.md |  10 +
 ...hr_timesheet_manager_approver_security.xml |  17 +
 .../static/description/index.html             | 454 ++++++++++++++++++
 .../tests/__init__.py                         |   4 +
 .../test_hr_timesheet_manager_approver.py     | 145 ++++++
 11 files changed, 778 insertions(+)
 create mode 100644 hr_timesheet_manager_approver/README.rst
 create mode 100644 hr_timesheet_manager_approver/__init__.py
 create mode 100644 hr_timesheet_manager_approver/__manifest__.py
 create mode 100644 hr_timesheet_manager_approver/pyproject.toml
 create mode 100644 hr_timesheet_manager_approver/readme/CONTRIBUTORS.md
 create mode 100644 hr_timesheet_manager_approver/readme/DESCRIPTION.md
 create mode 100644 hr_timesheet_manager_approver/readme/USAGE.md
 create mode 100644 hr_timesheet_manager_approver/security/hr_timesheet_manager_approver_security.xml
 create mode 100644 hr_timesheet_manager_approver/static/description/index.html
 create mode 100644 hr_timesheet_manager_approver/tests/__init__.py
 create mode 100644 hr_timesheet_manager_approver/tests/test_hr_timesheet_manager_approver.py

diff --git a/hr_timesheet_manager_approver/README.rst b/hr_timesheet_manager_approver/README.rst
new file mode 100644
index 0000000000..adbe57057f
--- /dev/null
+++ b/hr_timesheet_manager_approver/README.rst
@@ -0,0 +1,117 @@
+==========================
+Timesheet Manager Approver
+==========================
+
+.. 
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! This file is generated by oca-gen-addon-readme !!
+   !! changes will be overwritten.                   !!
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+   !! source digest: sha256:a835f0b5c73ced76ef46f252021aa25d284d12f1de59606a45930c03c15f95d3
+   !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+
+.. |badge1| image:: https://img.shields.io/badge/maturity-Beta-yellow.png
+    :target: https://odoo-community.org/page/development-status
+    :alt: Beta
+.. |badge2| image:: https://img.shields.io/badge/licence-AGPL--3-blue.png
+    :target: http://www.gnu.org/licenses/agpl-3.0-standalone.html
+    :alt: License: AGPL-3
+.. |badge3| image:: https://img.shields.io/badge/github-OCA%2Ftimesheet-lightgray.png?logo=github
+    :target: https://github.com/OCA/timesheet/tree/18.0/hr_timesheet_manager_approver
+    :alt: OCA/timesheet
+.. |badge4| image:: https://img.shields.io/badge/weblate-Translate%20me-F47D42.png
+    :target: https://translation.odoo-community.org/projects/timesheet-18-0/timesheet-18-0-hr_timesheet_manager_approver
+    :alt: Translate me on Weblate
+.. |badge5| image:: https://img.shields.io/badge/runboat-Try%20me-875A7B.png
+    :target: https://runboat.odoo-community.org/builds?repo=OCA/timesheet&target_branch=18.0
+    :alt: Try me on Runboat
+
+|badge1| |badge2| |badge3| |badge4| |badge5|
+
+This module extends the standard timesheet approver rules so that a user
+with the group *User: all timesheets* can also manage the timesheets of
+their subordinate employees (i.e. employees whose *Manager* field points
+to the approver).
+
+It updates the ``timesheet_line_rule_approver`` record rule to include
+the clause
+``('employee_id.parent_id.user_id', 'in', (False, user.id))``.
+
+**Table of contents**
+
+.. contents::
+   :local:
+
+Usage
+=====
+
+To use this module:
+
+1. Go to **Employees** and open the employee you want to set as a
+   manager.
+2. In the *Work Information* tab, under *Employee*, set the **Timesheet
+   Responsible** or ensure the **Manager** field points to the approver
+   user.
+3. Assign the *Timesheets / User: all timesheets* group to the manager
+   user (*Settings → Users & Companies → Users* → *Timesheets* section).
+4. Log in as the manager user.
+5. Go to **Timesheets**.
+6. You will now see, edit and delete timesheets for employees who report
+   to you, even on projects with *Invited employees* privacy. Also you
+   can create but only in the projects where the user has access.
+
+**Important:** Without this module, a timesheet approver can only manage
+timesheets on projects where they are a follower. With this module, the
+approver also gains access to their subordinates' timesheets regardless
+of project visibility.
+
+Bug Tracker
+===========
+
+Bugs are tracked on `GitHub Issues <https://github.com/OCA/timesheet/issues>`_.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+`feedback <https://github.com/OCA/timesheet/issues/new?body=module:%20hr_timesheet_manager_approver%0Aversion:%2018.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**>`_.
+
+Do not contact contributors directly about support or help with technical issues.
+
+Credits
+=======
+
+Authors
+-------
+
+* Moduon
+
+Contributors
+------------
+
+- Emilio Pascual (`Moduon <https://www.moduon.team/>`__)
+
+Maintainers
+-----------
+
+This module is maintained by the OCA.
+
+.. image:: https://odoo-community.org/logo.png
+   :alt: Odoo Community Association
+   :target: https://odoo-community.org
+
+OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.
+
+.. |maintainer-EmilioPascual| image:: https://github.com/EmilioPascual.png?size=40px
+    :target: https://github.com/EmilioPascual
+    :alt: EmilioPascual
+.. |maintainer-rafaelbn| image:: https://github.com/rafaelbn.png?size=40px
+    :target: https://github.com/rafaelbn
+    :alt: rafaelbn
+
+Current `maintainers <https://odoo-community.org/page/maintainer-role>`__:
+
+|maintainer-EmilioPascual| |maintainer-rafaelbn| 
+
+This module is part of the `OCA/timesheet <https://github.com/OCA/timesheet/tree/18.0/hr_timesheet_manager_approver>`_ project on GitHub.
+
+You are welcome to contribute. To learn how please visit https://odoo-community.org/page/Contribute.
diff --git a/hr_timesheet_manager_approver/__init__.py b/hr_timesheet_manager_approver/__init__.py
new file mode 100644
index 0000000000..ad95df3dab
--- /dev/null
+++ b/hr_timesheet_manager_approver/__init__.py
@@ -0,0 +1,2 @@
+# Copyright 2025 Moduon Team SL
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
diff --git a/hr_timesheet_manager_approver/__manifest__.py b/hr_timesheet_manager_approver/__manifest__.py
new file mode 100644
index 0000000000..18ff4514e9
--- /dev/null
+++ b/hr_timesheet_manager_approver/__manifest__.py
@@ -0,0 +1,19 @@
+# Copyright 2025 Moduon Team SL
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+
+{
+    "name": "Timesheet Manager Approver",
+    "version": "18.0.1.0.0",
+    "category": "Human Resources",
+    "summary": "Allow timesheet approvers to manage subordinate timesheets",
+    "license": "AGPL-3",
+    "author": "Moduon, Odoo Community Association (OCA)",
+    "website": "https://github.com/OCA/timesheet",
+    "depends": ["hr_timesheet"],
+    "maintainers": ["EmilioPascual", "rafaelbn"],
+    "data": [
+        "security/hr_timesheet_manager_approver_security.xml",
+    ],
+    "installable": True,
+    "auto_install": False,
+}
diff --git a/hr_timesheet_manager_approver/pyproject.toml b/hr_timesheet_manager_approver/pyproject.toml
new file mode 100644
index 0000000000..4231d0cccb
--- /dev/null
+++ b/hr_timesheet_manager_approver/pyproject.toml
@@ -0,0 +1,3 @@
+[build-system]
+requires = ["whool"]
+build-backend = "whool.buildapi"
diff --git a/hr_timesheet_manager_approver/readme/CONTRIBUTORS.md b/hr_timesheet_manager_approver/readme/CONTRIBUTORS.md
new file mode 100644
index 0000000000..ee7b9a6c8b
--- /dev/null
+++ b/hr_timesheet_manager_approver/readme/CONTRIBUTORS.md
@@ -0,0 +1 @@
+-   Emilio Pascual ([Moduon](https://www.moduon.team/))
diff --git a/hr_timesheet_manager_approver/readme/DESCRIPTION.md b/hr_timesheet_manager_approver/readme/DESCRIPTION.md
new file mode 100644
index 0000000000..90d09356c5
--- /dev/null
+++ b/hr_timesheet_manager_approver/readme/DESCRIPTION.md
@@ -0,0 +1,6 @@
+This module extends the standard timesheet approver rules so that a user with the
+group *User: all timesheets* can also manage the timesheets of their subordinate
+employees (i.e. employees whose *Manager* field points to the approver).
+
+It updates the ``timesheet_line_rule_approver`` record rule to include the clause
+``('employee_id.parent_id.user_id', 'in', (False, user.id))``.
diff --git a/hr_timesheet_manager_approver/readme/USAGE.md b/hr_timesheet_manager_approver/readme/USAGE.md
new file mode 100644
index 0000000000..de99bedf0f
--- /dev/null
+++ b/hr_timesheet_manager_approver/readme/USAGE.md
@@ -0,0 +1,10 @@
+To use this module:
+
+1. Go to **Employees** and open the employee you want to set as a manager.
+2. In the *Work Information* tab, under *Employee*, set the **Timesheet Responsible** or ensure the **Manager** field points to the approver user.
+3. Assign the *Timesheets / User: all timesheets* group to the manager user (*Settings → Users & Companies → Users* → *Timesheets* section).
+4. Log in as the manager user.
+5. Go to **Timesheets**.
+6. You will now see, edit and delete timesheets for employees who report to you, even on projects with *Invited employees* privacy. Also you can create but only in the projects where the user has access.
+
+**Important:** Without this module, a timesheet approver can only manage timesheets on projects where they are a follower. With this module, the approver also gains access to their subordinates' timesheets regardless of project visibility.
diff --git a/hr_timesheet_manager_approver/security/hr_timesheet_manager_approver_security.xml b/hr_timesheet_manager_approver/security/hr_timesheet_manager_approver_security.xml
new file mode 100644
index 0000000000..da66c1540f
--- /dev/null
+++ b/hr_timesheet_manager_approver/security/hr_timesheet_manager_approver_security.xml
@@ -0,0 +1,17 @@
+<?xml version="1.0" encoding="UTF-8" ?>
+<!--
+    Copyright 2025 Moduon Team SL
+    License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+-->
+<odoo noupdate="1">
+    <record id="hr_timesheet.timesheet_line_rule_approver" model="ir.rule">
+        <field name="domain_force">[
+            ('project_id', '!=', False),
+            '|', '|', '|',
+                ('project_id.privacy_visibility', '!=', 'followers'),
+                ('project_id.message_partner_ids', 'in', [user.partner_id.id]),
+                ('task_id.message_partner_ids', 'in', [user.partner_id.id]),
+                ('employee_id.parent_id.user_id', '=', user.id)
+        ]</field>
+    </record>
+</odoo>
diff --git a/hr_timesheet_manager_approver/static/description/index.html b/hr_timesheet_manager_approver/static/description/index.html
new file mode 100644
index 0000000000..2663c1d0dc
--- /dev/null
+++ b/hr_timesheet_manager_approver/static/description/index.html
@@ -0,0 +1,454 @@
+<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
+<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
+<head>
+<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
+<meta name="generator" content="Docutils: https://docutils.sourceforge.io/" />
+<title>Timesheet Manager Approver</title>
+<style type="text/css">
+
+/*
+:Author: David Goodger (goodger@python.org)
+:Id: $Id: html4css1.css 9511 2024-01-13 09:50:07Z milde $
+:Copyright: This stylesheet has been placed in the public domain.
+
+Default cascading style sheet for the HTML output of Docutils.
+Despite the name, some widely supported CSS2 features are used.
+
+See https://docutils.sourceforge.io/docs/howto/html-stylesheets.html for how to
+customize this style sheet.
+*/
+
+/* used to remove borders from tables and images */
+.borderless, table.borderless td, table.borderless th {
+  border: 0 }
+
+table.borderless td, table.borderless th {
+  /* Override padding for "table.docutils td" with "! important".
+     The right padding separates the table cells. */
+  padding: 0 0.5em 0 0 ! important }
+
+.first {
+  /* Override more specific margin styles with "! important". */
+  margin-top: 0 ! important }
+
+.last, .with-subtitle {
+  margin-bottom: 0 ! important }
+
+.hidden {
+  display: none }
+
+.subscript {
+  vertical-align: sub;
+  font-size: smaller }
+
+.superscript {
+  vertical-align: super;
+  font-size: smaller }
+
+a.toc-backref {
+  text-decoration: none ;
+  color: black }
+
+blockquote.epigraph {
+  margin: 2em 5em ; }
+
+dl.docutils dd {
+  margin-bottom: 0.5em }
+
+object[type="image/svg+xml"], object[type="application/x-shockwave-flash"] {
+  overflow: hidden;
+}
+
+/* Uncomment (and remove this text!) to get bold-faced definition list terms
+dl.docutils dt {
+  font-weight: bold }
+*/
+
+div.abstract {
+  margin: 2em 5em }
+
+div.abstract p.topic-title {
+  font-weight: bold ;
+  text-align: center }
+
+div.admonition, div.attention, div.caution, div.danger, div.error,
+div.hint, div.important, div.note, div.tip, div.warning {
+  margin: 2em ;
+  border: medium outset ;
+  padding: 1em }
+
+div.admonition p.admonition-title, div.hint p.admonition-title,
+div.important p.admonition-title, div.note p.admonition-title,
+div.tip p.admonition-title {
+  font-weight: bold ;
+  font-family: sans-serif }
+
+div.attention p.admonition-title, div.caution p.admonition-title,
+div.danger p.admonition-title, div.error p.admonition-title,
+div.warning p.admonition-title, .code .error {
+  color: red ;
+  font-weight: bold ;
+  font-family: sans-serif }
+
+/* Uncomment (and remove this text!) to get reduced vertical space in
+   compound paragraphs.
+div.compound .compound-first, div.compound .compound-middle {
+  margin-bottom: 0.5em }
+
+div.compound .compound-last, div.compound .compound-middle {
+  margin-top: 0.5em }
+*/
+
+div.dedication {
+  margin: 2em 5em ;
+  text-align: center ;
+  font-style: italic }
+
+div.dedication p.topic-title {
+  font-weight: bold ;
+  font-style: normal }
+
+div.figure {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+div.footer, div.header {
+  clear: both;
+  font-size: smaller }
+
+div.line-block {
+  display: block ;
+  margin-top: 1em ;
+  margin-bottom: 1em }
+
+div.line-block div.line-block {
+  margin-top: 0 ;
+  margin-bottom: 0 ;
+  margin-left: 1.5em }
+
+div.sidebar {
+  margin: 0 0 0.5em 1em ;
+  border: medium outset ;
+  padding: 1em ;
+  background-color: #ffffee ;
+  width: 40% ;
+  float: right ;
+  clear: right }
+
+div.sidebar p.rubric {
+  font-family: sans-serif ;
+  font-size: medium }
+
+div.system-messages {
+  margin: 5em }
+
+div.system-messages h1 {
+  color: red }
+
+div.system-message {
+  border: medium outset ;
+  padding: 1em }
+
+div.system-message p.system-message-title {
+  color: red ;
+  font-weight: bold }
+
+div.topic {
+  margin: 2em }
+
+h1.section-subtitle, h2.section-subtitle, h3.section-subtitle,
+h4.section-subtitle, h5.section-subtitle, h6.section-subtitle {
+  margin-top: 0.4em }
+
+h1.title {
+  text-align: center }
+
+h2.subtitle {
+  text-align: center }
+
+hr.docutils {
+  width: 75% }
+
+img.align-left, .figure.align-left, object.align-left, table.align-left {
+  clear: left ;
+  float: left ;
+  margin-right: 1em }
+
+img.align-right, .figure.align-right, object.align-right, table.align-right {
+  clear: right ;
+  float: right ;
+  margin-left: 1em }
+
+img.align-center, .figure.align-center, object.align-center {
+  display: block;
+  margin-left: auto;
+  margin-right: auto;
+}
+
+table.align-center {
+  margin-left: auto;
+  margin-right: auto;
+}
+
+.align-left {
+  text-align: left }
+
+.align-center {
+  clear: both ;
+  text-align: center }
+
+.align-right {
+  text-align: right }
+
+/* reset inner alignment in figures */
+div.align-right {
+  text-align: inherit }
+
+/* div.align-center * { */
+/*   text-align: left } */
+
+.align-top    {
+  vertical-align: top }
+
+.align-middle {
+  vertical-align: middle }
+
+.align-bottom {
+  vertical-align: bottom }
+
+ol.simple, ul.simple {
+  margin-bottom: 1em }
+
+ol.arabic {
+  list-style: decimal }
+
+ol.loweralpha {
+  list-style: lower-alpha }
+
+ol.upperalpha {
+  list-style: upper-alpha }
+
+ol.lowerroman {
+  list-style: lower-roman }
+
+ol.upperroman {
+  list-style: upper-roman }
+
+p.attribution {
+  text-align: right ;
+  margin-left: 50% }
+
+p.caption {
+  font-style: italic }
+
+p.credits {
+  font-style: italic ;
+  font-size: smaller }
+
+p.label {
+  white-space: nowrap }
+
+p.rubric {
+  font-weight: bold ;
+  font-size: larger ;
+  color: maroon ;
+  text-align: center }
+
+p.sidebar-title {
+  font-family: sans-serif ;
+  font-weight: bold ;
+  font-size: larger }
+
+p.sidebar-subtitle {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+p.topic-title {
+  font-weight: bold }
+
+pre.address {
+  margin-bottom: 0 ;
+  margin-top: 0 ;
+  font: inherit }
+
+pre.literal-block, pre.doctest-block, pre.math, pre.code {
+  margin-left: 2em ;
+  margin-right: 2em }
+
+pre.code .ln { color: gray; } /* line numbers */
+pre.code, code { background-color: #eeeeee }
+pre.code .comment, code .comment { color: #5C6576 }
+pre.code .keyword, code .keyword { color: #3B0D06; font-weight: bold }
+pre.code .literal.string, code .literal.string { color: #0C5404 }
+pre.code .name.builtin, code .name.builtin { color: #352B84 }
+pre.code .deleted, code .deleted { background-color: #DEB0A1}
+pre.code .inserted, code .inserted { background-color: #A3D289}
+
+span.classifier {
+  font-family: sans-serif ;
+  font-style: oblique }
+
+span.classifier-delimiter {
+  font-family: sans-serif ;
+  font-weight: bold }
+
+span.interpreted {
+  font-family: sans-serif }
+
+span.option {
+  white-space: nowrap }
+
+span.pre {
+  white-space: pre }
+
+span.problematic, pre.problematic {
+  color: red }
+
+span.section-subtitle {
+  /* font-size relative to parent (h1..h6 element) */
+  font-size: 80% }
+
+table.citation {
+  border-left: solid 1px gray;
+  margin-left: 1px }
+
+table.docinfo {
+  margin: 2em 4em }
+
+table.docutils {
+  margin-top: 0.5em ;
+  margin-bottom: 0.5em }
+
+table.footnote {
+  border-left: solid 1px black;
+  margin-left: 1px }
+
+table.docutils td, table.docutils th,
+table.docinfo td, table.docinfo th {
+  padding-left: 0.5em ;
+  padding-right: 0.5em ;
+  vertical-align: top }
+
+table.docutils th.field-name, table.docinfo th.docinfo-name {
+  font-weight: bold ;
+  text-align: left ;
+  white-space: nowrap ;
+  padding-left: 0 }
+
+/* "booktabs" style (no vertical lines) */
+table.docutils.booktabs {
+  border: 0px;
+  border-top: 2px solid;
+  border-bottom: 2px solid;
+  border-collapse: collapse;
+}
+table.docutils.booktabs * {
+  border: 0px;
+}
+table.docutils.booktabs th {
+  border-bottom: thin solid;
+  text-align: left;
+}
+
+h1 tt.docutils, h2 tt.docutils, h3 tt.docutils,
+h4 tt.docutils, h5 tt.docutils, h6 tt.docutils {
+  font-size: 100% }
+
+ul.auto-toc {
+  list-style-type: none }
+
+</style>
+</head>
+<body>
+<div class="document" id="timesheet-manager-approver">
+<h1 class="title">Timesheet Manager Approver</h1>
+
+<!-- !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! This file is generated by oca-gen-addon-readme !!
+!! changes will be overwritten.                   !!
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!
+!! source digest: sha256:a835f0b5c73ced76ef46f252021aa25d284d12f1de59606a45930c03c15f95d3
+!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! -->
+<p><a class="reference external image-reference" href="https://odoo-community.org/page/development-status"><img alt="Beta" src="https://img.shields.io/badge/maturity-Beta-yellow.png" /></a> <a class="reference external image-reference" href="http://www.gnu.org/licenses/agpl-3.0-standalone.html"><img alt="License: AGPL-3" src="https://img.shields.io/badge/licence-AGPL--3-blue.png" /></a> <a class="reference external image-reference" href="https://github.com/OCA/timesheet/tree/18.0/hr_timesheet_manager_approver"><img alt="OCA/timesheet" src="https://img.shields.io/badge/github-OCA%2Ftimesheet-lightgray.png?logo=github" /></a> <a class="reference external image-reference" href="https://translation.odoo-community.org/projects/timesheet-18-0/timesheet-18-0-hr_timesheet_manager_approver"><img alt="Translate me on Weblate" src="https://img.shields.io/badge/weblate-Translate%20me-F47D42.png" /></a> <a class="reference external image-reference" href="https://runboat.odoo-community.org/builds?repo=OCA/timesheet&amp;target_branch=18.0"><img alt="Try me on Runboat" src="https://img.shields.io/badge/runboat-Try%20me-875A7B.png" /></a></p>
+<p>This module extends the standard timesheet approver rules so that a user
+with the group <em>User: all timesheets</em> can also manage the timesheets of
+their subordinate employees (i.e. employees whose <em>Manager</em> field points
+to the approver).</p>
+<p>It updates the <tt class="docutils literal">timesheet_line_rule_approver</tt> record rule to include
+the clause
+<tt class="docutils literal">('employee_id.parent_id.user_id', 'in', (False, user.id))</tt>.</p>
+<p><strong>Table of contents</strong></p>
+<div class="contents local topic" id="contents">
+<ul class="simple">
+<li><a class="reference internal" href="#usage" id="toc-entry-1">Usage</a></li>
+<li><a class="reference internal" href="#bug-tracker" id="toc-entry-2">Bug Tracker</a></li>
+<li><a class="reference internal" href="#credits" id="toc-entry-3">Credits</a><ul>
+<li><a class="reference internal" href="#authors" id="toc-entry-4">Authors</a></li>
+<li><a class="reference internal" href="#contributors" id="toc-entry-5">Contributors</a></li>
+<li><a class="reference internal" href="#maintainers" id="toc-entry-6">Maintainers</a></li>
+</ul>
+</li>
+</ul>
+</div>
+<div class="section" id="usage">
+<h1><a class="toc-backref" href="#toc-entry-1">Usage</a></h1>
+<p>To use this module:</p>
+<ol class="arabic simple">
+<li>Go to <strong>Employees</strong> and open the employee you want to set as a
+manager.</li>
+<li>In the <em>Work Information</em> tab, under <em>Employee</em>, set the <strong>Timesheet
+Responsible</strong> or ensure the <strong>Manager</strong> field points to the approver
+user.</li>
+<li>Assign the <em>Timesheets / User: all timesheets</em> group to the manager
+user (<em>Settings → Users &amp; Companies → Users</em> → <em>Timesheets</em> section).</li>
+<li>Log in as the manager user.</li>
+<li>Go to <strong>Timesheets</strong>.</li>
+<li>You will now see, edit and delete timesheets for employees who report
+to you, even on projects with <em>Invited employees</em> privacy. Also you
+can create but only in the projects where the user has access.</li>
+</ol>
+<p><strong>Important:</strong> Without this module, a timesheet approver can only manage
+timesheets on projects where they are a follower. With this module, the
+approver also gains access to their subordinates’ timesheets regardless
+of project visibility.</p>
+</div>
+<div class="section" id="bug-tracker">
+<h1><a class="toc-backref" href="#toc-entry-2">Bug Tracker</a></h1>
+<p>Bugs are tracked on <a class="reference external" href="https://github.com/OCA/timesheet/issues">GitHub Issues</a>.
+In case of trouble, please check there if your issue has already been reported.
+If you spotted it first, help us to smash it by providing a detailed and welcomed
+<a class="reference external" href="https://github.com/OCA/timesheet/issues/new?body=module:%20hr_timesheet_manager_approver%0Aversion:%2018.0%0A%0A**Steps%20to%20reproduce**%0A-%20...%0A%0A**Current%20behavior**%0A%0A**Expected%20behavior**">feedback</a>.</p>
+<p>Do not contact contributors directly about support or help with technical issues.</p>
+</div>
+<div class="section" id="credits">
+<h1><a class="toc-backref" href="#toc-entry-3">Credits</a></h1>
+<div class="section" id="authors">
+<h2><a class="toc-backref" href="#toc-entry-4">Authors</a></h2>
+<ul class="simple">
+<li>Moduon</li>
+</ul>
+</div>
+<div class="section" id="contributors">
+<h2><a class="toc-backref" href="#toc-entry-5">Contributors</a></h2>
+<ul class="simple">
+<li>Emilio Pascual (<a class="reference external" href="https://www.moduon.team/">Moduon</a>)</li>
+</ul>
+</div>
+<div class="section" id="maintainers">
+<h2><a class="toc-backref" href="#toc-entry-6">Maintainers</a></h2>
+<p>This module is maintained by the OCA.</p>
+<a class="reference external image-reference" href="https://odoo-community.org">
+<img alt="Odoo Community Association" src="https://odoo-community.org/logo.png" />
+</a>
+<p>OCA, or the Odoo Community Association, is a nonprofit organization whose
+mission is to support the collaborative development of Odoo features and
+promote its widespread use.</p>
+<p>Current <a class="reference external" href="https://odoo-community.org/page/maintainer-role">maintainers</a>:</p>
+<p><a class="reference external image-reference" href="https://github.com/EmilioPascual"><img alt="EmilioPascual" src="https://github.com/EmilioPascual.png?size=40px" /></a> <a class="reference external image-reference" href="https://github.com/rafaelbn"><img alt="rafaelbn" src="https://github.com/rafaelbn.png?size=40px" /></a></p>
+<p>This module is part of the <a class="reference external" href="https://github.com/OCA/timesheet/tree/18.0/hr_timesheet_manager_approver">OCA/timesheet</a> project on GitHub.</p>
+<p>You are welcome to contribute. To learn how please visit <a class="reference external" href="https://odoo-community.org/page/Contribute">https://odoo-community.org/page/Contribute</a>.</p>
+</div>
+</div>
+</div>
+</body>
+</html>
diff --git a/hr_timesheet_manager_approver/tests/__init__.py b/hr_timesheet_manager_approver/tests/__init__.py
new file mode 100644
index 0000000000..cb73f364ba
--- /dev/null
+++ b/hr_timesheet_manager_approver/tests/__init__.py
@@ -0,0 +1,4 @@
+# Copyright 2025 Moduon Team SL
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+
+from . import test_hr_timesheet_manager_approver
diff --git a/hr_timesheet_manager_approver/tests/test_hr_timesheet_manager_approver.py b/hr_timesheet_manager_approver/tests/test_hr_timesheet_manager_approver.py
new file mode 100644
index 0000000000..0f947490a8
--- /dev/null
+++ b/hr_timesheet_manager_approver/tests/test_hr_timesheet_manager_approver.py
@@ -0,0 +1,145 @@
+# Copyright 2025 Moduon Team SL
+# License AGPL-3.0 or later (https://www.gnu.org/licenses/agpl).
+
+from odoo.tests import new_test_user
+
+from odoo.addons.base.tests.common import BaseCommon
+
+
+class TestHrTimesheetManagerApprover(BaseCommon):
+    """Test that timesheet approvers can manage subordinate timesheets."""
+
+    @classmethod
+    def setUpClass(cls):
+        super().setUpClass()
+        cls.manager_user = new_test_user(
+            cls.env,
+            login="manager_user",
+            groups="hr_timesheet.group_hr_timesheet_approver,project.group_project_user",
+        )
+        cls.subordinate_user = new_test_user(
+            cls.env,
+            login="subordinate_user",
+            groups="hr_timesheet.group_hr_timesheet_user,project.group_project_user",
+        )
+        cls.other_user = new_test_user(
+            cls.env,
+            login="other_user",
+            groups="hr_timesheet.group_hr_timesheet_user,project.group_project_user",
+        )
+        cls.manager_employee = cls.env["hr.employee"].create(
+            {
+                "name": "Manager Employee",
+                "user_id": cls.manager_user.id,
+            }
+        )
+        cls.subordinate_employee = cls.env["hr.employee"].create(
+            {
+                "name": "Subordinate Employee",
+                "user_id": cls.subordinate_user.id,
+                "parent_id": cls.manager_employee.id,
+            }
+        )
+        cls.other_manager_user = new_test_user(
+            cls.env,
+            login="other_manager_user",
+            groups="hr_timesheet.group_hr_timesheet_approver,project.group_project_user",
+        )
+        cls.other_manager_employee = cls.env["hr.employee"].create(
+            {
+                "name": "Other Manager Employee",
+                "user_id": cls.other_manager_user.id,
+            }
+        )
+        cls.other_employee = cls.env["hr.employee"].create(
+            {
+                "name": "Other Employee",
+                "user_id": cls.other_user.id,
+                "parent_id": cls.other_manager_employee.id,
+            }
+        )
+        cls.analytic_plan = cls.env["account.analytic.plan"].create(
+            {"name": "Test Plan"}
+        )
+        cls.analytic_account = cls.env["account.analytic.account"].create(
+            {"name": "AA Test", "plan_id": cls.analytic_plan.id}
+        )
+        cls.project = cls.env["project.project"].create(
+            {
+                "name": "Test Project",
+                "privacy_visibility": "followers",
+                "account_id": cls.analytic_account.id,
+            }
+        )
+        cls.manager_env = cls.env(user=cls.manager_user)
+
+    def test_manager_can_read_subordinate_timesheet(self):
+        """Manager with approver group can read subordinate timesheet."""
+        timesheet = self.env["account.analytic.line"].create(
+            {
+                "name": "Test Timesheet",
+                "project_id": self.project.id,
+                "employee_id": self.subordinate_employee.id,
+                "unit_amount": 1,
+            }
+        )
+        record = self.manager_env["account.analytic.line"].browse(timesheet.id)
+        self.assertTrue(record.exists())
+        self.assertEqual(record.name, "Test Timesheet")
+
+    def test_manager_can_write_subordinate_timesheet(self):
+        """Manager with approver group can write subordinate timesheet."""
+        timesheet = self.env["account.analytic.line"].create(
+            {
+                "name": "Test Timesheet",
+                "project_id": self.project.id,
+                "employee_id": self.subordinate_employee.id,
+                "unit_amount": 1,
+            }
+        )
+        record = self.manager_env["account.analytic.line"].browse(timesheet.id)
+        record.write({"name": "Updated Timesheet"})
+        self.assertEqual(record.name, "Updated Timesheet")
+
+    def test_manager_can_create_timesheet_for_subordinate(self):
+        """Manager with approver group can create timesheet for subordinate."""
+        record = self.manager_env["account.analytic.line"].create(
+            {
+                "name": "Manager Created Timesheet",
+                "project_id": self.project.id,
+                "employee_id": self.subordinate_employee.id,
+                "unit_amount": 2,
+            }
+        )
+        self.assertTrue(record.exists())
+
+    def test_manager_can_unlink_subordinate_timesheet(self):
+        """Manager with approver group can delete subordinate timesheet."""
+        timesheet = self.env["account.analytic.line"].create(
+            {
+                "name": "Test Timesheet",
+                "project_id": self.project.id,
+                "employee_id": self.subordinate_employee.id,
+                "unit_amount": 1,
+            }
+        )
+        record = self.manager_env["account.analytic.line"].browse(timesheet.id)
+        record.unlink()
+        self.assertFalse(
+            self.env["account.analytic.line"].browse(timesheet.id).exists()
+        )
+
+    def test_manager_cannot_access_non_subordinate_timesheet(self):
+        """Manager with approver group cannot access timesheet of non-subordinate."""
+        timesheet = self.env["account.analytic.line"].create(
+            {
+                "name": "Other Timesheet",
+                "project_id": self.project.id,
+                "employee_id": self.other_employee.id,
+                "unit_amount": 1,
+            }
+        )
+        found = self.manager_env["account.analytic.line"].search(
+            [("id", "=", timesheet.id)]
+        )
+        self.assertFalse(found, "Manager should not see non-subordinate timesheet")